Nat - Siemens SIMATIC NET SCALANCE S615 Configuration Manual

Industrial ethernet security web based management

Hide thumbs Also See for SIMATIC NET SCALANCE S615:

Operating instructions manual (68 pages)

Configuration manual (320 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

page of 180

/ 180
Contents
Table of Contents
Bookmarks

Table of Contents

Technical basics

2.3 NAT

2.3

NAT

NAT (Network Address Translation) is a method of translating IP addresses in data packets.

With this, two different networks (internal and external) can be connected together.

A distinction is made between source NAT in which the source IP address is translated and

destination NAT in which the destination IP address is translated.

IP masquerading

IP masquerading is a simplified source NAT. With each outgoing data packet sent via this

interface, the source IP address is replaced by the IP address of the interface. The adapted

data packet is sent to the destination IP address. For the destination host it appears as if the

queries always came from the same sender. The internal nodes cannot be reached directly

from the external network. By using NAPT, the services of the internal nodes can be made

reachable via the external IP address of the device.

IP masquerading can be used if the internal IP addresses cannot or should not be forwarded

externally, for example because the internal network structure should remain hidden.

You configure masquerading in "Layer 3" > "NAT" > "IP Masquerading (Page 138)".

NAPT

NAPT (Network Address and Port Translation) is a form of destination NAT and is often

called port forwarding. This allows the services of the internal nodes to be reached from

external that are hidden by IP masquerading or source NAT.

Incoming data packets are translated that come from the external network and are intended

for an external IP address of the device (destination IP address). The destination IP address

is replaced by the IP address of the internal node. In addition to address translation, port

translation is also possible.

The options are available for port translation:

from

a single port

a port range

a single port

Response

the same

If the ports are the same, the frames will be forwarded without port

port

translation.

a single port

The frames are translated to the port.

a single port

The frames from the port range are translated to the same port (n:1).

the same

If the port ranges are the same, the frames will be forwarded without

port range

port translation.

another port

The frames are translated to any free port from the target range.

range

With individual connection, they are normally translated to the first port

in the target range.

If there are connections at the same time, the round robin method is

used to translate to a free port in the target range.

a port range

The frames are translated to any free port from the target range. With

individual connection, they are normally translated to the first port in

the target range. If there are connections at the same time, the round

robin method is used to translate to a free port in the target range.

SCALANCE S615 Web Based Management

Configuration Manual, 05/2015, C79000-G8976-C388-02

Table of Contents

Show Quick Links

Quick Links:
Configuration Examples
Ipv4 Address, Subnet Mask and Address...

Hide quick links:

Table of Contents

Nat - Siemens SIMATIC NET SCALANCE S615 Configuration Manual

2.3 NAT

Hide quick links:

Related Manuals for Siemens SIMATIC NET SCALANCE S615

Related Content for Siemens SIMATIC NET SCALANCE S615

Table of Contents